Support

Related pages

BalaBit Certified Zorp Expert

The course teaches the participants the concepts of Zorp firewalls, as well as to install, configure, and troubleshoot Zorp.

This course is recommended for:

System engineers who want to install and configure Zorp systems on their own and have completed the BalaBit Certified Zorp Associate course.

Course description

The course teaches the skills not covered by previous courses, but important for the operation and installation of Zorp firewalls. Additionally, it prepares the participants for the BalaBit Certified Zorp Expert exam. The Zorp Expert course builds on the Zorp Associate course, without repeating material already covered.

We recommend this course to all system engineers using Zorp who completed the BZCA course and would like to increase their knowledge about Zorp firewalls, especially version Zorp 3.3.

Upon successful completion attendees will be able to:

Install and configure Zorp gateway and authentication systems, and to design the required network architectures. Furthermore:

  • Understand the concepts of Zorp firewalls
  • Install the Zorp, ZMS and ZMC components
  • Create policies to control who can use the firewall
  • Configure the Zorp gateway on their own
  • Control the access of selected devices to the Zorp gateway
  • Inspect the operation of Zorp by analyzing the log messages
  • Understand the concepts of the ZMS PKI system, create CAs, issue and revoke certificates
  • Create proxy classes to inspect embedded protocols
  • Install and configure authentication servers
  • Install and configure a complete authentication environment using the Zorp gateway, the Zorp authentication server, and the Zorp Authentication Agent
  • Configure VPNs
  • Configure virus filtering and the Zorp Content Vectoring server
  • Configure and operate system monitoring

Prerequisites

The BCZE Upgrade course is available after completing the BCZA course. Experience in maintaining Zorp gateways.

Topics covered (version: Zorp 3.3)

1. day

Module: Installing Zorp, ZMS, ZMC

  • Preparations
  • hardware requirements
  • Installing ZorpOS
  • Manual installation
  • Updating ZorpOS
  • Installing ZMC
  • Installing the Zorp Authentication Agent
  • Troubleshooting

Module: MultiSite management

  • Agent-Engine authentication (PKI)
  • Multihost management
  • Bootstrapping hosts and clusters
  • Multisite management

Module: PKI management with ZMC

  • Introduction to cryptography
  • Certificates
  • Certificates in ZMS
  • PKI management with ZMC
  • CA groups
  • PKI in other fields of ZMC

Module: Advanced packet filtering settings

  • Operation of NetFilter/IPtables
  • Structure of Zorp packet filtering rules
  • Handling of packet filtering rules in ZorpOS
  • Understanding logs

Module: Advanced Zorp architecture

  • Architecture of Zorp
  • Establishing a connection
    • Understanding transparency
    • Client-side connections (Dispatcher classes)
    • Server-side connections and modifying their parameters
  • Zorp modules
    • Services
    • Sessions and Secondary Sessions
    • Router classes
    • Chainer classes
    • NAT classes
  • Proxy stacking
  • Proxy classes
    • Proxy stacking (chaining and stacking)
  • Understanding logs

2. day

Module: Cluster management with ZMC

  • Introduction to clusters
    • Fail-Over
    • Load Balance
  • Clusters and ZMS
  • Heartbeat
  • Heartbeat Resources
  • Clusters and components

Module: Advanced proxy configuration

  • The role and use of Python classes
  • Using the Class editor
  • Basic proxy configuration:
    • Configuring the HTTP proxy
    • Configuring the FTP proxy
    • Configuring the NNTP proxy
    • Configuring the POP3 proxy
    • Configuring the IMAP proxy
    • Configuring the SMTP proxy
  • Complex proxy configuration
    • Configuring the MIME proxy
    • Proxy stacking
    • Configuring the SSL proxy
    • Virus filtering

3. day

Module: Authentication using ZAS

  • Authentication
    • Authentication principles
    • Authentication methods
  • Authentication with Zorp
    • Authentication concepts in Zorp
  • The ZAS server
    • Installation and configuration
  • Configuring ZAS with ZMC
  • Authenticating Zorp services

Module: VPN

  • VPN basics
    • IPSec
    • OpenVPN
  • Configuring IPSec with ZMC
  • Configuring OpenVPN with ZMC
  • Using Zorp proxies in VPN tunnels

Module: ZCV

  • Content Vectoring basics
  • Concepts of ZCV
    • Scanpath
    • RuleGroup
    • Router
    • ZCV modules (sed, html, vbuster, kaspersky)
  • Using ZCV with Zorp proxies

Module: Monitoring

  • Monitoring basics
  • Monitoring in ZMS
  • Configuring monitoring from ZMC
    • Monitoring Jobs
    • Triggers
    • Groups, Contacts, Calendars
    • Histograms

Duration

Three days from 9:00 to 17:00, including lunch.

back to top

Copyright 2000-2008 BalaBit IT Security
All rights reserved

Bookmark This Corporate blog Security blog